Ubisoft’s inside providers had been compromised in a safety breach this week when hackers tried to steal 900GB of information, together with Rainbow Six Siege person information, in keeping with VX-Underground. Ubisoft noticed the breach 48 hours later, and was capable of revoke the hackers’ entry earlier than they may efficiently exfiltrate the info.
In an announcement to BleepingComputer, Ubisoft stated, “We’re conscious of an alleged information safety incident and are presently investigating. We do not have extra to share at the moment.” VX-Underground posted redacted screenshots shared by the attacker that allegedly present they accessed Microsoft Groups conversations, the Ubisoft SharePoint server, Confluence and MongoDB Atlas. “The Menace Actor wouldn’t share how they acquired preliminary entry,” VX-Underground wrote in a publish on X. “Upon entry they audited the customers entry rights and hung out totally reviewing Microsoft Groups, Confluence, and SharePoint.”
December twentieth an unknown Menace Actor compromised Ubisoft. The person had entry for roughly 48 hours till administration realized one thing was off and entry was revoked.
They aimed to exfiltrate roughly 900gb of information however misplaced entry.
— vx-underground (@vxunderground) December 22, 2023
In response to VX-Underground, the attackers’ try and get Rainbow Six Siege person information was unsuccessful. It’s unclear at the moment in the event that they had been capable of get any delicate info earlier than Ubisoft shut the entire thing down.
Trending Merchandise